Abstract: At present, with the rapid development of information technology and applications, cyberspace security has become a focus area of attention in the world. Many countries have upgraded the cyberspace security strategy to the level of national strategy. As the theoretical support of cyberspace security, the network security system has always been an important part of the research in the field of cyberspace security. The network security architecture is a complex system engineering, which needs to integrate the security organization, security technology and security management to build an integrated overall security barrier. The United States has always been a leader in the research of network security architecture. The US government, academia, and industry have actively cooperated and proposed many classic network security models and architectures. This paper gives a brief introduction to the American classic network security models and architectures PDRR, P2DR, IATF and the Community Gold Standard (CGS).

Key words: network security architecture, PDRR, P2DR, IATF, CGS

摘要： 前，随着信息技术和应用的飞速发展，网络空间安全已经成为世界各国关注的重点领域，很多国家已经将网络空间安全战略提升到国家战略的层面.作为网络空间安全的理论支撑，网络安全体系一直以来都是网络空间安全领域研究的一项重要内容.网络安全体系是一项复杂的系统工程，需要把安全组织体系、安全技术体系和安全管理体系等手段进行有机融合，构建一体化的整体安全屏障.美国在网络安全体系研究方面一直较为领先，美国政府、学术界、工业界积极合作，提出了很多经典的网络安全体系架构模型.对美国经典网络安全体系模型和架构PDRR模型、P2DR模型、IATF框架和黄金标准框架进行了简要介绍.

关键词: 网络安全体系, PDRR, P2DR, IATF, 黄金标准架构